Website
*.box.com
Tags
Phishing Download Exfiltration
Phishing
Attackers have used *.box.com to store malicious files and then share them with targets.
Command and Control
None
Exfiltration
*.box.com can be used to store exfiltrated files on there.
Download
*.box.com creates shared links for files which enables attackers to store tools there and download them when required.
Service Provider
Box
Sample
https://www.joesandbox.com/analysis/145442/0/html
Created: 2021-11-10
Last Update: 2021-11-10
Credits: mr.d0x